Lucene search

[email protected]NVD:CVE-2006-4997

HistoryOct 10, 2006 - 4:06 a.m.

CVE-2006-4997

2006-10-1004:06:00

CWE-416

[email protected]

web.nvd.nist.gov

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

Confidence

High

EPSS

0.056

Percentile

93.3%

JSON

The clip_mkip function in net/atm/clip.c of the ATM subsystem in Linux kernel allows remote attackers to cause a denial of service (panic) via unknown vectors that cause the ATM subsystem to access the memory of socket buffers after they are freed (freed pointer dereference).

Affected configurations

NVD

Node

linuxlinux_kernelRange<2.6.18

Node

canonicalubuntu_linuxMatch5.10

canonicalubuntu_linuxMatch6.06

canonicalubuntu_linuxMatch6.10

Node

redhatenterprise_linuxMatch2.1

redhatenterprise_linuxMatch3

redhatenterprise_linuxMatch4

References

bugzilla.redhat.com/bugzilla/show_bug.cgi?id=206265

secunia.com/advisories/22253

secunia.com/advisories/22279

secunia.com/advisories/22292

secunia.com/advisories/22497

secunia.com/advisories/22762

secunia.com/advisories/22945

secunia.com/advisories/23064

secunia.com/advisories/23370

secunia.com/advisories/23384

secunia.com/advisories/23395

secunia.com/advisories/23474

secunia.com/advisories/23752

secunia.com/advisories/23788

secunia.com/advisories/24288

secunia.com/advisories/25691

securitytracker.com/id?1017526

support.avaya.com/elmodocs2/security/ASA-2006-249.htm

support.avaya.com/elmodocs2/security/ASA-2006-254.htm

support.avaya.com/elmodocs2/security/ASA-2007-078.htm

www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=fe26109a9dfd9327fdbe630fc819e1b7450986b2

www.mandriva.com/security/advisories?name=MDKSA-2006:197

www.mandriva.com/security/advisories?name=MDKSA-2007:012

www.mandriva.com/security/advisories?name=MDKSA-2007:025

www.novell.com/linux/security/advisories/2006_79_kernel.html

www.redhat.com/support/errata/RHSA-2006-0689.html

www.redhat.com/support/errata/RHSA-2006-0710.html

www.redhat.com/support/errata/RHSA-2007-0012.html

www.redhat.com/support/errata/RHSA-2007-0013.html

www.securityfocus.com/archive/1/471457

www.securityfocus.com/bid/20363

www.ubuntu.com/usn/usn-395-1

www.us.debian.org/security/2006/dsa-1233

www.us.debian.org/security/2006/dsa-1237

www.vupen.com/english/advisories/2006/3937

www.vupen.com/english/advisories/2006/3999

exchange.xforce.ibmcloud.com/vulnerabilities/29387

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10388

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

Confidence

High

EPSS

0.056

Percentile

93.3%

JSON

Related for NVD:CVE-2006-4997

ubuntucve1 cve1 cvelist1 centos3 redhat4 nessus15 osv2 openvas9 debian2 ubuntu1 oraclelinux1 suse1